Vulnerabilities > CVE-2018-7829 - Improper Neutralization of Special Elements in Data Query Logic vulnerability in Schneider-Electric products

047910
CVSS 9.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
schneider-electric
CWE-943
critical

Summary

An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which allows an attacker to execute arbitrary system commands.

Vulnerable Configurations

Part Description Count
OS
Schneider-Electric
59
Hardware
Schneider-Electric
59